Black Hat Brifings

Global Ransomware Cyber Attack Hits More Than 100 Countries

Cyber Attack Hacker Phishing Security System Concept
The largest cyber attack in recent history was carried out in May, involving the WannaCry ransomware. Total impact counts thousands of parties in 150 countries.
In recent years, the cyber world witnessed an increase in the number and sophistication of cyber attacks.
However, all these attacks pale in comparison to the ongoing ransomware campaign by malware called WannaCry that has taken the entire world by surprise. This cyber attack is being observed worldwide since May 12, and is unprecedented in scale.
Your TOR usage is being watched
Europol reported 150 countries had been affected just two days after the ransomware was first observed.
Currently, over 200,000 parties worldwide using Microsoft Windows operating systems have been directly impacted by the WannaCry ransomware.
The discovery of an effective kill switch by an internet security researcher slowed the virus significantly, but it seems that the ransomware attack may be an escalating threat, with similarly sophisticated attacks in the near future highly likely.
About WannaCry Ransomware
The WannaCry payload is a variation of a ransomware crypto worm, which exploits vulnerabilities in the implementation of Server Message Block (SMB) and Microsoft Remote Desktop Protocol (RDP) in Windows.
WannaCry ransomware spreads laterally between computers on the same LAN and through malicious email attachments and websites. The exploits employed in this cyber attack include EternalBlue and DoublePulsar.
These tools were dumped online by a hacker group called Shadow Brokers on April 14. Reports, including one by Forbes, indicate that EternalBlue is a leaked National Security Agency tool and was utilized to some degree as the ransomware’s main infection method.
It is part of a number of tools leaked from Equation Group, which is believed to be related to the NSA.
There is currently no conclusive information about the initial infection vector, although evidence points to an initial infection in Asia.
This ransom is raised to $600 if the victim fails to pay within three days.
Global Impact
A number of factors contributed to the widespread nature of this ransomware attack. Microsoft had released patches for supported versions of its operating systems on March 14.
However, patches were not available for legacy Windows XP, Windows Server 2003 and Windows 8. Compounding the situation is the fact that very many organizations had not yet installed the patched versions.
According to Kaspersky Lab’s Global Research and Analysis Team, the ransomware attack affected Russia the most out of all the other impacted countries.
Ukraine, India, Taiwan, China and Romania were also among the worst hit. The organizations impacted include hospitals in the U.K., FedEx, Spanish organizations, German railway transport networks and universities among others.
National Health Service (NHS) hospitals in England were among the most significantly affected institutions of the ransomware attack.
On May 12, some hospitals had to turn away non-critical patients and divert ambulances. Several automobile manufacturers including Nissan and Renault were forced to halt production following the ransomware infection of their systems.
Although the scale of WannaCry ransomware was gargantuan, security experts say that its impact is relatively low considering the worst case scenarios had the kill switch not been discovered.
One that immediately comes to mind is the possibility of the ransomware targeting critical infrastructures such as nuclear power plants and railway systems.
Cyber attack written newspaper. Cyber attack written newspaper, shallow dof, real newspaper.
In recent years, the cyber world witnessed an increase in the number and sophistication of cyber attacks.
This ransomware attack has definitely awakened the world to the importance cyber security. It is bound to lead to some reforms in areas such as governments’ handling of exploits as well as individual and organizational web security implementation.

Comments

Post a Comment

Popular posts from this blog

Dark Web Enables Easier Access to WMDs

Image
Dark Web Enables Easier Access to WMDs The UN’s Head of Disarmament Affairs raises concerns over the dark web, specifically how it has made it easy for terrorists to access WMDs. The head of the UN’s Disarmament Affairs, Izumi Nakamitsu, has expressed concerns over the potential availability of weapons of mass destruction (WMDs) on the dark web. According to Nakamitsu, the deluge of weapons and technology that is available for purchase or hire on various dark web markets makes it a lot easier for terrorists and other non-state actors to get their hands on dangerous WMDs. A well-visited criminal hotspot, the dark web is known for its underground marketplaces where illegal goods—both digital and physical—are bought and sold using cryptocurrency. While the majority of dark web markets, sites and forums generally have low entry barriers, a few require a more exclusive, invite-only membership to gain access to. Nakamitsu’s chief concern is the threat terrorists c...
Keep reading

Some of the Biggest Hacks Ever

Image
Some of the Biggest Hacks Ever Biggest hacks ever occurred in our modern day history A lot has happened in the cyber world over the past decade, and a lot more is still going on. Below is a list of some of the biggest hacks that have occurred in modern day history, and their corresponding impact on both parties of the attack. 1. WannaCry Just recently, the world witnessed a widespread ransomware attack that hijacked some high-stakes entities, which involved government institutions, multinationals, private companies and many more. When the virus took control of these systems, it would demand payment of $300 USDin the form of Bitcoins, to be delivered over a span three days. Failure to pay the ransom within the said number of days would make the required payment double to a sum of $600USD. And after a duration of six days, and no payments were made, then the files would be automatically deleted from the system. The virus caused a major shakeup for the affected enti...
Keep reading

Black Hat Briefings

Image
Messaging App Kik Launches Its Own Cryptocurrency Messaging app Kik just announced that it would be launching a new cryptocurrency called Kin, to be used to buy digital services within the app. On May 25, Kik Interactive announced that the firm would be introducing its own cryptocurrency, which will enable users to purchase digital services on its platform. Messaging app Kik just announced that it would be launching a new cryptocurrency called Kin, to be used to buy digital services within the app.Kik Interactive is behind the “Kik” messaging service based in Canada. The free messaging and chat app, founded in 2009, is geared towards a teen demographic......... It boasts of around 300 million registered users. The proposed cryptocurrency is called “Kin,” a short form of Kinship or community. The plans to launch the cryptocurrency are currently underway and the company’s officials expect the system to debut sometime this year. The firm did not reveal how ...
Keep reading